Lan DNS Issue

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

Problem
I cannot get to our website from the LAN but can from the WAN. The website
is on a DMZ with a public and private IP but the Lan is using a forwarder to
point to the ISP's DNS servers. So when you try to go to our website the LAN
traffic goes through the Cisco PIX and tries to connect to the external IP to
resolve the website but the PIX does not allow loopback.

Question
How do I setup DNS on the internal dns server so it knows to go to the
internal IP and not the public IP?

What I have tried
I tried to setup a www record on the lan but the problem with that is the
lan domain is example.com but the website is www.website.com. So when you add
the record you can get to the website but you have to type
www.website.com.example.com because it adds the FQDN of the internal LAN to
the website.

Thank you in advance for reading my post and helping me with this challenge.

Product
Win 2000 Server with AD
 
In
Madrino said:
Problem
I cannot get to our website from the LAN but can from the WAN. The
website is on a DMZ with a public and private IP but the Lan is using
a forwarder to point to the ISP's DNS servers. So when you try to go
to our website the LAN traffic goes through the Cisco PIX and tries
to connect to the external IP to resolve the website but the PIX does
not allow loopback.

Question
How do I setup DNS on the internal dns server so it knows to go to the
internal IP and not the public IP?

What I have tried
I tried to setup a www record on the lan but the problem with that is
the lan domain is example.com but the website is www.website.com. So
when you add the record you can get to the website but you have to
type www.website.com.example.com because it adds the FQDN of the
internal LAN to the website.

Thank you in advance for reading my post and helping me with this
challenge.

Product
Win 2000 Server with AD
Click to expand...

Add a new forward lookup zone named www.website.com, then in that zone,
create a new host, leave the name field blank and give it the private IP of
the web server.
 
Kevin,

Thanks for your help. Do I create a Primary, Secondary, or Stub zone in the
Forward lookup zone?
 
Hi

Kevin hit nail on head , you will need to create a primary zone (then Ad int or not as you desire)

Kevin, would it not be better (and there maybe a good reason why it isnt - I am a noob!) to create a zone called website.com and then within that create a www. record so then if you need to you can create other A records for mail.website.com and intranet.website.com etc you can, without having to create another zone?

I understand a "same as parent" host record in www.website.com zone will work perfectly though


Si
 
Kevin,

Thanks for your help. Do I create a Primary, Secondary, or
Stub zone in the
Forward lookup zone?
Click to expand...

a primary zone for website.com and a record for www (cname or A)

do you also use a proxy? Routing Script?
 
Hi


ECHO......ECHo......ECho.....Echo....echo.......lol, I think we have made our point gents,keep up the good work

just out of curiosity is there any difference between a zone called www.website.com with a same as parent record and a website.com zone with an A record for www? which is considered "best practice"

:-)

S
 
Last edited:
In
pscyime said:
Hi

Kevin hit nail on head , you will need to create a primary zone (then
Ad int or not as you desire)

Kevin, would it not be better (and there maybe a good reason why it
isnt - I am a noob!) to create a zone called website.com and then
within that create a www. record so then if you need to you can create
other A records for mail.website.com and intranet.website.com etc you
can, without having to create another zone?
Click to expand...

It depends on how many other host names you will need to resolve to the
private address, if you only need the one and you create the zone for only
the domain name, you have no choice but to create the rest of the records.
 
In
Jorge_de_Almeida_Pinto said:
a primary zone for website.com and a record for www (cname or A)

do you also use a proxy? Routing Script?
Click to expand...

Why would you create a zone for the domain if you only need the one record?
You could be setting yourself up to create and maintain a lot of records.
A Cname typically won't work because Cnames usually resolve to a name in the
same domain name.
 
Back
Top